APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies
Ravie LakshmananApr 08, 2026Vulnerability / Cloud Security The Russian threat actor known as APT28 (aka Forest Blizzard and Pawn Storm) has...
SecurityThe
CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation
Ravie LakshmananMar 28, 2026Vulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical...
Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks
Ravie LakshmananMar 26, 2026Malware / Mobile Security The kernel exploit for two security vulnerabilities used in the recently uncovered Apple...
DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks
Ravie LakshmananMar 20, 2026Botnet / Network Security The U.S. Department of Justice (DoJ) on Thursday announced the disruption of command-and-control...
CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths
Ravie LakshmananMar 17, 2026Vulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity...
Are scalable cloud-native security solutions the future
How Can Non-Human Identities Revolutionize Cloud Security? The question of how to effectively manage Non-Human Identities (NHIs) is gaining...
CISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain Exposed
Ravie LakshmananMar 12, 2026Vulnerability / Enterprise Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical...
CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited
Ravie LakshmananMar 10, 2026Vulnerability / Enterprise Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security...
Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV Catalog
Ravie LakshmananMar 06, 2026Vulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security...
CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog
Ravie LakshmananMar 04, 2026Vulnerability / Enterprise Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently...
SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing Attacks
Ravie LakshmananFeb 25, 2026Social Engineering / Cloud Security The notorious cybercrime collective known as Scattered LAPSUS$ Hunters (SLH) has been...
CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability
Ravie LakshmananFeb 25, 2026Vulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently...
FBI Reports 1,900 ATM Jackpotting Incidents Since 2020, $20M Lost in 2025
Ravie LakshmananFeb 20, 2026Financial Crime / Banking Security The U.S. Federal Bureau of Investigation (FBI) has warned of an increase...
CISA Orders Removal of Unsupported Edge Devices to Reduce Federal Network Risk
Ravie LakshmananFeb 06, 2026Federal Security / Infrastructure Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered Federal Civilian...
AISURU/Kimwolf Botnet Launches Record-Setting 31.4 Tbps DDoS Attack
Ravie LakshmananFeb 05, 2026Botnet / Network Security The distributed denial-of-service (DDoS) botnet known as AISURU/Kimwolf has been attributed to a...
